This article was originally published on the Red Hat Customer Portal. The information may no longer be current. Red Hat Product Security has been made aware of a vulnerability in the SSL 3.0 protocol, which has been assigned CVE-2014-3566. All implementations of SSL 3.0 are affected. This vulnerability allows a man-in-the-middle attacker to decrypt ciphertext using a padding oracle side-channel at
![POODLE - An SSL 3.0 Vulnerability (CVE-2014-3566)](https://cdn-ak-scissors.b.st-hatena.com/image/square/9fd8bca48d9ba96a845cfaf11896de8608e82636/height=288;version=1;width=512/https%3A%2F%2Fwww.redhat.com%2Fthemes%2Fcustom%2Frhdc%2Fimg%2Fred-hat-social-share.jpg)